如何使GeoServer和leafLet在Web应用程序中安全 [英] How make GeoServer and leafLet secure in a web applciation

问题描述

我正在开发一个网站，并使用leafLet进行可视化.数据来自数据库，一切正常.

I am developing a website and using leafLet for visualization. Data are coming from a database and everything works fine.

我开发了这样的东西: https://maps.gcc.tas.gov.au/dogexerciseareas.html

I developed something like this: https://maps.gcc.tas.gov.au/dogexerciseareas.html

如您所见，如果在页面上单击鼠标右键并选择ViewSource，则可以看到服务器名称，端口和数据库(typeName : 'GCC_cc:DogExerciseAreas',).对我来说，这不是很安全，尤其是如果我们托管所有内容(IIS，DB，GeoServer等)，那么，有什么办法可以在客户端隐藏这些详细信息并使其更加安全.

As you can see, if you do a right-click on the page and select ViewSource, you can see the servername, port, and database (typeName : 'GCC_cc:DogExerciseAreas',). To me, this is not very secure especially if we host everything (IIS, DB, GeoServer,..), So, Is there any way to hide these details at the client side and make this more secure.

推荐答案

好吧，我有很长的时间从事这项工作，并且我想出了这种方法."

Well, I had a chance to work on this for a long time and I came up with this approach"

首先:将Geoserver放在一个VPC区域中，并且仅允许从特定IP和端口访问它(即与世界隔离，期望特定IP和端口)

First: Put Geoserver in one VPC zone and only allows access to it from specific IP and port (i.e. Isolate from the world expect specific IP and port)

第二:如@IvanSanchez所建议.使用代理和urlredirect通过Web服务器(而非客户端)与Geoserver进行交互

Second: As @IvanSanchez has suggested.use proxy and urlredirect to interact with Geoserver via web server (not client)

通过上述操作，所有内容都将通过Web服务器，然后传递到Geoserver.

With the above, everything goes through web-server, then passed to Geoserver.

这篇关于如何使GeoServer和leafLet在Web应用程序中安全的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！